After investigating a malicious message sent via Facebook Messenger, the researchers at CyberNews (opens in new tab) have uncovered a large-scale phishing (opens in new tab) campaign that has tricked close to 500k Facebook users.
The “Is that you” phishing scam first started circulating on the social network back in 2017. The scam begins with a message sent by one of a user's friends in which they claim to have found a video or image with them featured in it.
However, the message appears as a video that when clicked, leads a user through a chain of websites infected with malicious scripts. These scripts are able to determine a user's location, the device they're using and even its operating system.
- We've assembled a list of the best malware removal (opens in new tab) software available
- Keep your devices protected with the best antivirus (opens in new tab) software
- Also check out our roundup of the best ransomware protection (opens in new tab)
From there, the scripts lead users to a Facebook phishing page to harvest their credentials and then if possible, infect a user's device with adware (opens in new tab) or other malware (opens in new tab).
Is that you?
While the “Is that you” phishing scam has been around for years, the campaign discovered by CyberNews began operating at the end of January 2020 and so far 480,00 users have fallen victim to it with 77 percent of the victims residing in Germany.
Due to the large-scale nature of the campaign and how it appears to mainly target German users, the news outlet shared its report with CERT Germany, Facebook and the URL shortener service wal.ee which was used by the threat actor responsible.
At the same time, the threat actor also used a legitimate third-party web statistics (opens in new tab) service to track their campaign which is how CyberNews was able to uncover it in the first place and learn how many users were affected.
Interested users can read the full report here (opens in new tab) and CyberNews recommends that those at risk of phishing use a password manager (opens in new tab), two-factor authentication (opens in new tab) and remain vigilant when checking their messages online to avoid falling victim to this or other similar scams.
- We've also highlighted the best endpoint protection (opens in new tab)